Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d0/492590-a02f-443e-aaa3-feac26eaecc2/1/jVZ5GUfctK-6JZk4NQl7ZIpXnnQ.roa
File: jVZ5GUfctK-6JZk4NQl7ZIpXnnQ.roa (raw, json)
Hash identifier: 3gOzqAeJ89cb881pvNZczENOCIObP9th52MRccyzV4s=
Subject key identifier: 8D:56:79:19:47:DC:B4:AF:BA:25:99:38:35:09:7B:64:8A:57:9E:74
Certificate issuer: /CN=6c8fd1a8ae5996c1e5692c1a8c42bfe9c3ba5745
Certificate serial: 17A8356C
Authority key identifier: 6C:8F:D1:A8:AE:59:96:C1:E5:69:2C:1A:8C:42:BF:E9:C3:BA:57:45
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bI_RqK5ZlsHlaSwajEK_6cO6V0U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d0/492590-a02f-443e-aaa3-feac26eaecc2/1/jVZ5GUfctK-6JZk4NQl7ZIpXnnQ.roa
Signing time: Sat 01 Jan 2022 04:54:05 +0000
ROA not before: Sat 01 Jan 2022 04:54:05 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 41546
IP address blocks: 185.119.253.0/24 maxlen: 24
2a06:82c7::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 396899692 (0x17a8356c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6c8fd1a8ae5996c1e5692c1a8c42bfe9c3ba5745
Validity
Not Before: Jan 1 04:54:05 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=8d56791947dcb4afba25993835097b648a579e74
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d5:8a:d6:87:f9:04:0f:53:96:b6:95:b5:80:e7:
35:d7:f1:93:52:1c:63:80:de:f1:f5:dc:74:35:b0:
6a:d3:d5:c0:d7:93:53:c6:88:18:14:a3:21:40:39:
b0:f4:1e:51:de:97:2f:dd:38:bb:45:f9:db:78:15:
66:4e:e9:c6:47:30:86:42:76:2d:de:73:22:95:e9:
28:6d:98:08:10:a0:ec:8d:53:e5:f6:ec:b9:86:d6:
02:e7:52:e9:e3:17:06:39:9e:59:23:d8:d1:ab:fe:
e4:77:b9:85:5d:73:5c:c6:14:61:5e:e6:28:2b:89:
d0:4a:02:1c:59:9f:96:43:63:5f:a2:eb:c2:e8:b3:
41:14:60:6e:2e:e7:38:c0:04:e9:0d:68:17:9b:60:
69:a1:3b:00:9b:6d:d9:a3:99:62:9b:d2:0e:37:5a:
8f:df:8b:2b:1f:c7:f9:02:59:f2:df:d8:a5:7c:61:
66:3a:20:47:fa:ea:fc:30:25:ff:0a:00:c9:8f:fe:
f1:e1:22:9a:d9:14:06:0b:69:0f:bd:4d:67:c6:87:
e3:ac:9c:7b:a3:70:c9:af:0e:49:cc:30:44:8b:02:
d8:6f:bb:5a:98:ac:85:3f:2d:c6:7b:d4:c5:cc:49:
11:22:f6:98:da:8e:51:51:cc:39:dd:2c:48:cf:7d:
cb:e5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8D:56:79:19:47:DC:B4:AF:BA:25:99:38:35:09:7B:64:8A:57:9E:74
X509v3 Authority Key Identifier:
keyid:6C:8F:D1:A8:AE:59:96:C1:E5:69:2C:1A:8C:42:BF:E9:C3:BA:57:45
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bI_RqK5ZlsHlaSwajEK_6cO6V0U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/492590-a02f-443e-aaa3-feac26eaecc2/1/jVZ5GUfctK-6JZk4NQl7ZIpXnnQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/492590-a02f-443e-aaa3-feac26eaecc2/1/bI_RqK5ZlsHlaSwajEK_6cO6V0U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.119.253.0/24
IPv6:
2a06:82c7::/48
Signature Algorithm: sha256WithRSAEncryption
06:f2:99:32:d1:b5:8d:ff:18:b8:11:d3:40:15:ad:a2:d9:7e:
bc:44:13:7a:7c:6a:7a:5d:f3:66:71:45:e1:b6:0d:f4:c3:47:
87:ca:0d:71:ff:01:0a:b5:87:ca:5e:4c:4a:ce:5f:b3:6c:24:
0c:32:8e:61:c6:6a:ad:79:a0:42:dc:fc:6d:a2:8b:26:3d:d6:
aa:b3:b9:79:66:23:76:ac:d7:4b:9b:dd:c8:88:4e:9f:9e:b7:
d4:c6:a3:b5:2c:60:b5:91:94:60:19:16:5e:78:cf:f0:5b:7e:
e9:a3:87:22:23:71:70:24:7d:94:b2:d9:eb:c8:75:47:b6:e1:
a6:6e:92:49:d4:3e:a0:f5:3c:4b:cd:7a:50:0c:d9:af:1e:bf:
74:68:b3:9e:e4:0c:f7:f9:cd:fc:6c:44:2e:34:31:00:54:8e:
16:51:6d:f7:f6:65:4d:f2:91:21:ae:3a:b0:16:ab:cc:9f:ba:
5b:15:c1:7a:93:26:4c:a7:04:f5:65:d9:5f:9c:4c:1f:7c:c4:
05:59:ba:05:b8:2b:23:30:ac:9c:50:d5:a1:54:b6:51:7a:54:
1e:75:05:de:8c:d0:66:59:8d:d4:6a:06:b5:12:f8:83:19:08:
d4:3c:41:10:84:6f:da:4e:f7:16:3c:bc:02:8d:be:fd:03:04:
81:0a:d7:ee
-----BEGIN CERTIFICATE-----
MIIFADCCA+igAwIBAgIEF6g1bDANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg2
YzhmZDFhOGFlNTk5NmMxZTU2OTJjMWE4YzQyYmZlOWMzYmE1NzQ1MB4XDTIyMDEw
MTA0NTQwNVoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoOGQ1Njc5MTk0N2Rj
YjRhZmJhMjU5OTM4MzUwOTdiNjQ4YTU3OWU3NDCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBANWK1of5BA9TlraVtYDnNdfxk1IcY4De8fXcdDWwatPVwNeT
U8aIGBSjIUA5sPQeUd6XL904u0X523gVZk7pxkcwhkJ2Ld5zIpXpKG2YCBCg7I1T
5fbsuYbWAudS6eMXBjmeWSPY0av+5He5hV1zXMYUYV7mKCuJ0EoCHFmflkNjX6Lr
wuizQRRgbi7nOMAE6Q1oF5tgaaE7AJtt2aOZYpvSDjdaj9+LKx/H+QJZ8t/YpXxh
ZjogR/rq/DAl/woAyY/+8eEimtkUBgtpD71NZ8aH46yce6Nwya8OScwwRIsC2G+7
WpishT8txnvUxcxJESL2mNqOUVHMOd0sSM99y+UCAwEAAaOCAhowggIWMB0GA1Ud
DgQWBBSNVnkZR9y0r7olmTg1CXtkileedDAfBgNVHSMEGDAWgBRsj9GorlmWweVp
LBqMQr/pw7pXRTAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L2JJX1JxSzVabHNIbGFTd2FqRUtfNmNPNlYwVS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvZDAvNDkyNTkwLWEwMmYtNDQzZS1hYWEzLWZlYWMyNmVhZWNjMi8x
L2pWWjVHVWZjdEstNkpaazROUWw3WklwWG5uUS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvZDAv
NDkyNTkwLWEwMmYtNDQzZS1hYWEzLWZlYWMyNmVhZWNjMi8xL2JJX1JxSzVabHNI
bGFTd2FqRUtfNmNPNlYwVS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAw
BggrBgEFBQcBBwEB/wQhMB8wDAQCAAEwBgMEALl3/TAPBAIAAjAJAwcAKgaCxwAA
MA0GCSqGSIb3DQEBCwUAA4IBAQAG8pky0bWN/xi4EdNAFa2i2X68RBN6fGp6XfNm
cUXhtg30w0eHyg1x/wEKtYfKXkxKzl+zbCQMMo5hxmqteaBC3PxtoosmPdaqs7l5
ZiN2rNdLm93IiE6fnrfUxqO1LGC1kZRgGRZeeM/wW37po4ciI3FwJH2UstnryHVH
tuGmbpJJ1D6g9TxLzXpQDNmvHr90aLOe5Az3+c38bEQuNDEAVI4WUW339mVN8pEh
rjqwFqvMn7pbFcF6kyZMpwT1ZdlfnEwffMQFWboFuCsjMKycUNWhVLZRelQedQXe
jNBmWY3Uaga1EviDGQjUPEEQhG/aTvcWPLwCjb79AwSBCtfu
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:45:33 2024 by rpki-client on console-ams.rpki-client.org